indexo.dev

flown.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-16 · ok HTTP/1.1 200 590 ms crawled 2026-05-07

US · 76.76.21.21 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
FLOWN | Body doubling & virtual co-working for focus
Description
Work silently alongside others in virtual body doubling sessions that boost focus and accountability. Especially effective for those with ADHD.
Language
en-US
Canonical
https://flown.com/
Translations
  • en

Open Graph

title
FLOWN | Body doubling & virtual co-working for focus
locale
en
image:url
/assets/shared/main-preview-image.png
site name
Flown
description
Get into flow and beat procrastination with online body doubling. Daily focus sessions with built-in accountability, expert facilitation and friendly community.

Technology

CDN
Vercel
CMS
Next.js

Registration

Registrar
GoDaddy Online Services Cayman Islands Ltd.
Created
2000-03-06
Expires
2028-03-06 656 days left
Updated
2026-03-07
Name servers
  • ns-1107.awsdns-10.org
  • ns-1945.awsdns-51.co.uk
  • ns-798.awsdns-35.net
  • ns-85.awsdns-10.com

DNS records live

NS
  • ns-1107.awsdns-10.org
  • ns-1945.awsdns-51.co.uk
  • ns-798.awsdns-35.net
  • ns-85.awsdns-10.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 6 TXT records
  • MS=1DEB02882D2E655E702C143FB4A0B6982BFBFE5C
  • facebook-domain-verification=sd9ieh0pa8rp5k6y2aoomuplc1l417
  • google-site-verification=pUJESkmveNq2XWQniJWVwQWEWxnARJnZDu7JoQDqt08
  • google-site-verification=wP40Z4I4oXaSRDDVvS4DeJLtVa8K6MYR1kX9j1sIi84
  • google-site-verification=ykAIUKKN_VTVEUD9YAA-TtLyrZ024bz-aCRn1a2q1Kk
  • stripe-verification=cd2dbc31b03db23bc5b235c128a57f98377e38d6f107b951246be18525691dd6

Email authentication partial

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:re+lvevi0mhigv@dmarc.postmarkapp.com; sp=none; aspf=r; adkim=r;
policy: none (monitoring only) · sp=none
DKIM
  • google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCh4//0fvplW2DGrQDutiVD6YV0lKLTugfWJzUI/cXzwFJZ9OdoxN6UuRFF02nnsjr4pVAuAyxbuOg3FaeBeE…
  • s1: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCw61QJHskXcvpXExFS7H9XMsIxrl8Sp+l2O9vkSAtsTVGiSgqIt7nxQ/QcBgmtxxZ951nY9J8o0TragM+aZFiNno…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDRw6Y4ZpfDdPtZ0QGZVEaABdOFfbDApbks0JK3pUBu6pQ9b6FQPrFggn6GHXyUCe3l5N2/tsvshuXaqskTVNuTm9…
selectors probed

Certificate (current)

R12
from 2026-04-02 to 2026-07-01
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://flown.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
no-referrer-when-downgrade
permissions-policy
clipboard-read=(self),clipboard-write=(self),gamepad=(),speaker-selection=(self),accelerometer=(self *),ambient-light-sensor=(),autoplay=(self *),battery=(),camera=(self *),cross-origin-isolated=(),display-capture=(self *),document-domain=(),encrypted-media=(self *),execution-while-not-rendered=(),execution-while-out-of-viewport=(),fullscreen=(self *),geolocation=(self),gyroscope=(self *),magnetometer=(),microphone=(self *),midi=(),navigation-override=(),payment=(self),picture-in-picture=(self *),publickey-credentials-get=(),screen-wake-lock=(self *),sync-xhr=(self),usb=(),web-share=(self),xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
base-uri 'self';child-src https://intercom-sheets.com https://www.intercom-reporting.com https://www.youtube.com https://player.vimeo.com https://fast.wistia.net;connect-src 'self' *.amplitude.com *.analytics.google.com *.bing.net *.bing.com *.stream-io-api.com *.cloud.gist.build *.cloudinary.com *.cookieyes.com/ *.customer.io *.daily.co *.datocms-assets.com *.datocms.com *.doubleclick.net *.facebook.com *.facebook.net *.featuregates.org/ *.featureassets.org/ *.google-analytics.com *.googletagmanager.com *.googleoptimize.com *.google.com *.google.co.uk *.gstatic.com *.googlesyndication.com *.hotjar.com *.hotjar.io *.ingest.de.sentry.io *.ingest.sentry.io *.intercom.io *.intercomcdn.com *.intercomcdn.eu *.intercomusercontent.com *.impct.site *.impactcdn.com *.linkedin.com/ *.mux.com *.productfruits.com https://productfruits.help *.pusher.com *.referralsaasquatch.com *.segment.com *.segment.io *.stripe.com *.ssqt.io *.onesignal.com onesignal.com *.statsigapi.net/ *.trustpilot.com *.verce
strict-transport-security
max-age=63072000

Linked from (2)